Browser Security

Chrome 142 Emergency Patch; Edge Updates & Extension Threat

07 Nov 2025 — 2 min read

The New Comet Assistant

Comet Assistant receives a major update, enhancing web perception and multi-tab workflow capabilities
New version explicitly asks for user permission before browser interaction to ensure control
Prioritizes user privacy and agency, reducing unauthorized actions and data exposure risks

Source: Perplexity AI Hub | Date: November 06, 2025

Amazon issued a legal threat against Perplexity regarding Comet AI assistants on its platform
Perplexity states user credentials for AI assistants are stored only on user devices, not servers
Corporate actions restricting AI assistant use could undermine user privacy and digital autonomy

Source: Perplexity AI Hub | Date: November 04, 2025

Microsoft named a Leader in IDC MarketScape 2025 for application streaming and enterprise browsers
Microsoft Edge for Business utilizes a Zero Trust model, enforcing conditional access on unmanaged devices
Integrates with Microsoft 365 for unified policy management and supports distinct work/personal profiles

Source: Microsoft Edge Dev Blog | Date: November 06, 2025

OpenAI introduces new tools like company knowledge and AgentKit for secure AI deployment
Automating code review and refactoring mitigates software vulnerabilities, enhancing security
Multimodal model integration requires robust security measures to safeguard against threats

Source: OpenAI Newsroom | Date: November 05, 2025

Google Chrome AI Mode is now easier to use on iOS and Android with a dedicated button
Users can ask complex, multi-part questions and explore topics with follow-up queries
Feature is available in the U.S., rolling out to 160 countries and languages soon

Source: Google Chrome Blog | Date: November 05, 2025

Google released an emergency update, Chrome version 142, to address multiple high-risk vulnerabilities, including critical Remote Code Execution (RCE) flaws.
These severe security issues could allow attackers to execute arbitrary code on affected systems, posing a significant threat to user data and system integrity.
All Chrome users are strongly advised to update their browsers immediately to version 142 across all platforms to mitigate these actively exploited or high-severity threats.

Source: The Cyber Express | Date: November 07, 2025

Microsoft Edge is standardizing its update experience across Windows, macOS, and Linux to ensure consistent update cadence for all users.
This unification aims to simplify update management for enterprise IT administrators by reducing platform-specific update complexities.
The change will lead to more uniform feature rollouts and security patch delivery across various operating environments.

Source: Microsoft | Date: November 07, 2025

A malicious VS Code extension, "VSC-Anarchy," was discovered masquerading as a productivity tool but containing built-in ransomware capabilities.
The extension, uploaded by a "Vibe-Code" account, attempts to encrypt user files and extort payment, similar to traditional ransomware attacks.
This finding underscores the significant security risks posed by malicious extensions, even in developer environments like VS Code, affecting supply chain security.

Source: The Hacker News | Date: November 07, 2025